Website and Ecommerce Security

Website security is one of todays most overlooked aspects of securing the enterprise and should be a priority in any organization. Hackers often concentrate their efforts on web-based applications like ecommerce applications, shopping carts, forms, login pages, or content management systems. Web applications are accessible 24 hours a day, 7 days a week, often they hold valuable data and are the the window to every enterprise.

Firewalls, SSL and locked-down servers all have there place against hacking but are limited tools against web application hacking, as any defense at the network security level will provide limited protection against web application attacks since they are launched on port 80 - which has to remain open. In addition, web applications are often tailor-made; and are therefore tested less than packaged software and are more likely to have undiscovered vulnerabilities.

Should you have be concerned with your web or ecommerce security?